CVE-2013-6033

N/A Unknown
Published: February 04, 2014 Modified: April 29, 2026
View on NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities on Lexmark W840 through LS.HA.P252, T64x before LS.ST.P344, C935dn through LC.JO.P091, C920 through LS.TA.P152, C53x through LS.SW.P069, C52x through LS.FA.P150, E450 through LM.SZ.P124, E350 through LE.PH.P129, and E250 through LE.PM.P126 printers allow remote authenticated users to inject arbitrary web script or HTML by using (1) SNMP or (2) the Embedded Web Server (EWS) to set the (a) Contact or (b) Location field.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://support.lexmark.com/index?page=content&id=TE585
Source: cret@cert.org
Vendor Advisory
http://www.kb.cert.org/vuls/id/108062
Source: cret@cert.org
US Government Resource
http://www.osvdb.org/102752
Source: cret@cert.org
http://www.securityfocus.com/bid/65277
Source: cret@cert.org
http://support.lexmark.com/index?page=content&id=TE585
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.kb.cert.org/vuls/id/108062
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.osvdb.org/102752
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/65277
Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.3%
55th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-79

Affected Vendors

lexmark

Related CVEs

CVE-2026-7182 N/A
CVE-2026-41553 N/A
CVE-2026-41552 N/A
CVE-2026-8503 N/A
CVE-2026-8454 N/A